Application No. 10/747,972 



jftthe Plasms 

Please amend Claim 1. Rest of the claims remains same (they being dependent claims). 

1 . (Currently amended) A method of authenticating a transaction, the method comprising: 

causing a separate unit to communicate with a device, 

the separate unit being secured and independently operating from the device, the 
separate unit configurable to include a fifst-biometric sensor to obtain fifst biometric 
characteristics of a user, the fifst biometric characteristics physically representing the 
user; 

initiating a local authentication process 7 using the separate unit , the local authentication process 
comprising: 

and i ts b i om e tr i c s e nsor to obtaining the_biometric characteristics of a-the user from the 
biometric sensor: 

decrypting stored biometric characteristics for the user: and 

fey comparing the biometric characteristics with pro conf i gured and the stored biometric 
characteristics; in a smart-card l ocated i n a smart-card roador l ocated i ns i de tho separate 

if the biometric characteristics match with the stored biometric characteristics, initiating an 
encrypted authentication transaction request comprising: 

receiving personalized data at the device from the user: 

recovering atomic time for usage in session key generation: 

encrypting the personalized data using the sessions keys, public keys and third party 
public keys; and 

sending the encrypted personalized data to the third party through the device as 
encrypted authentication transaction request using a challenge response protocol 
method, wherein the atomic time is used as a serialization and challenge response 
protocol variable; 

i n i t i at i ng an encrypted authont i catod transaction request whore porsona li zod data i s encrypted 
us i ng sa i d b i om e tr i c charact e r i st i cs as w e l l as atom i c c l ock wh e r e th e atom i c c l ock i s us e d as 
s e r i a li zat i on and cha lle ng e r e spons e protocols var i ab le , and g e n e rat i ng un i qu e s e ss i ons k e ys 
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us e d as pr i vat e k e ys as w ell as p e rsona l iz e d data us e d as pub li c k e y us i ng th e d e v i c e to s e nd 
th i s e ncrypt e d auth e nt i cat e d transact i on r e qu e st us i ng a cha lle ng e r e spons e protoco l m e thod; 

commun i cat i ng th e e ncrypt e d auth e nt i cat e d r e qu e st to a th i rd party through th e d e v i c e ; and 

receiving a signal at the separate unit signing the encrypted authenticated transaction request 
via the device to authenticate the transaction ; and 

such authent i cat i on bo i ng dono l oca ll y i n tho soparato un i t w i thout tho uso of any centra l sorvor, 
whoro i n tho separate un i t i s cause to request porsona li zod data from tho usor assoc i ated w i th 
tho dev i ce, tho soparato un i t i s not to encrypt tho transact i on but to 

digitally signing the authentication at the separate unit using the atomic time clock stamping of 
the transaction between the device and the third party, on l y wh e n th e b i om e tr i c charact e r i st i cs 
of th e us e r i s v e r i f ie d, th e transact i on Gan on l y b e auth e nt i cat e d wh e n th e p e rsona li z e d data i s 
auth e nt i cat e d i n th e s e parat e un i t. 

2. (Previously presented) The method of claim 1, wherein the separate unit is further 
configurable to include a second biometric sensor to acquire second biometric characteristics of 
the user to ensure that the user is indeed authenticated. 

3. (Previously presented) The method of claim 1 , wherein the first biometric sensor is a 
fingerprint sensor to acquire a fingerprint of the user, and the second biometric sensor is a 
microphone to acquire a voice of the user. 

4. (Original) The method of claim 1, wherein the device is a personal digital assistant (PDA). 

5. (Original) The method of claim 1, wherein the device is a telephone. 

6. (Original) The method of claim 5, wherein the telephone is a cellular telephone. 

7. (Original) The method of claim 1, wherein the signal used to authenticate the transaction is a 
high-contrast signal. 

8. (Previously presented) The method of claim 1, wherein said communicating the transaction 
request to the third party involves a use of a dual tone audio signal. 
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9. (Original) The method of claim 1, wherein the signal is an audio frequency shift keying 
(AFSK) signal. 

10. (Original) The method of claim 8, wherein the signal is an audio frequency shift keying 
(AFSK) signal. 

1 1 . (Previously presented) The method of claim 8, wherein the signal is a private line (PL) 
signal or a wireless signal. 

12. (Previously presented) The method of claim 1, wherein said initiating a transaction request 
includes an entry of a personal identification number (PIN) through the keyboard of the device. 

13. (Previously presented) The method of claim 12, wherein the separate unit is terminated if a 
PIN entry is attempted more than a predetermined number of times. 

14. (Previously presented) The method of claim 1, wherein the separate unit further includes a 
biometric input; and said initiating a transaction request includes receiving biometric data 
through the biometric input. 

15. (Original) The method of claim 14, wherein the biometric input is a fingerprinting. 

16. (Previously presented) The method of claim 1, wherein one or both of the transaction 
request and the authentication signal are encrypted. 

17. (Previously amended) The method of claim 16, wherein the encryption is based on public 
key cryptography further including and not limited to Identity-Based Encryption (IBE). 

18. (Previously presented) The method of claim 1 , wherein the separate unit or device includes 
a memory; the transaction request and authentication signal constitute a session; and 
information regarding the session is stored in the memory. 

19. (Previously presented) The method of claim 1, wherein the separate unit is a headset. 
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20. (Previously presented) The method of claim 19, wherein the headset includes capability of 
reading in confidential information from a user associated with the device. 

21 . (Previously presented) The method of claim 1, wherein the said encryption is performed 
using a one-way encryption algorithm that employs one or many biometric input, atomic clock 
and unique session keys. 

22. (Previously presented) The method of claim 1, wherein the said authentication is performed 
using a challenge response protocol. 
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